I have a few user accounts. Mine being one of them that keep getting locked out. I checked the security logs on the system and it is constantly coming from a single machine on the network. This just started today. If I turn the machine off then all is well. If I turn it back on... well I'm guessing one of the services is using credentials. The other is a user that is no longer with the company, and who's account has been disabled for quite some time. Is there a way I can find out what services are using these credentials on the server?? Any guidance would be greatly appreciated.